Administration Console Online Help

Configure the WebLogic
Adjudication provider

An Adjudication provider resolves authorization conflicts by weighing
each Authorization provider's access decision and determining whether to
permit access to the requested resource. If you only have one
Authorization provider configured in the security realm and it is the
WebLogic Authorization provider, then an ABSTAIN returned from the
single Authorization provider is treated as a DENY. You can only have
one Adjudication provider configured in a security realm, and you must
have one Adjudication provider.

WebLogic Server offers the
following types of Adjudication providers:

The WebLogic Adjudication
provider is the standard Adjudication provider for the WebLogic
Security Framework. Note that the Administration Console refers to the
WebLogic Adjudication provider as the Default Adjudicator.

If you have not already done so, in the Change Center of the Administration Console, click Lock & Edit (see Use the Change Center).

In the left pane, select Security Realms
and click the name of the realm you are configuring (for example,
myrealm).

Select
Providers > Adjudication and click the name
of the Adjudication provider.

Optionally,
select Configuration > Provider Specific and
set Require Unanimous Permit. Do this if you
want to require PERMIT to be returned from all Authorization providers
in the realm in order to permit access to the requested
resource.

Click
Save to save your changes.

To replace the Adjudication provider, click the
Replace button and configure a new Adjudication
provider.

To activate these changes, in the Change
Center, click Activate
Changes.